196Articles
9Categories
2024-05-14Date
🚨 CISA KEV 2[−]
14 May KEVCISA Adds Google Chromium Vulnerability (CVE-2024-4671) to Known Exploited Vulnerabilities Catalogsubmitted by kid to cybersecurity 3 points | 0 comments https://www.cisa.gov/known-exploited-vulnerabilities-catalogCISA.GOV
14 May KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-30051 Microsoft DWM Core Library Privilege Escalation Vulnerability CVE-2024-30040 Microsoft Windows MSHTML Platform Security Feature B…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 69[−]
14 MayApple Patches Everything: macOS, iOS, iPadOS, watchOS, tvOS updated., (Tue, May 14th)Apple today released updates for its various operating systems. The updates cover iOS, iPadOS, macOS, watchOS and tvOS. A standalone update for Safari was released for older versions of macOS. One already exploited vulnerability, CVE-2024-23296 is patched for older versions of ma…ISC.SANS.EDU
14 MayAnother Chrome VulnerabilityGoogle has patched another Chrome zero-day: On Thursday, Google said an anonymous source notified it of the vulnerability. The vulnerability carries a severity rating of 8.8 out of 10. In response, Google said, it would be releasing versions 124.0.6367.201/.202 for macOS and Wind…SCHNEIER.COM
14 MayGoogle Patches Second Chrome Zero-Day in One WeekGoogle has announced patches for another Chrome vulnerability that has been exploited in attacks. This is the second zero-day addressed by the company in one week and the third flaw leveraged in malicious attacks in 2024. The new zero-day, tracked as CVE-2024-4761, has been descr…SECURITYWEEK.COM
14 MayCritical Flaws in Cacti Framework Could Let Attackers Execute Malicious CodeThe maintainers of the Cacti open-source network monitoring and fault management framework have addressed a dozen security flaws, including two critical issues that could lead to the execution of arbitrary code. The most severe of the vulnerabilities are listed below - …THEHACKERNEWS.COM
14 MayGoogle Chrome Emergency Update Fixes Sixth Zero-Day Exploited in 2024The latest bug is tracked as CVE-2024-4761. It is an out-of-bounds write problem impacting Chrome’s V8 JavaScript engine, which is responsible for executing JS code in the application.BLEEPINGCOMPUTER.COM
14 MayNew Chrome Zero-Day Vulnerability CVE-2024-4761 Under Active ExploitationGoogle on Monday shipped emergency fixes to address a new zero-day flaw in the Chrome web browser that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2024-4761, is an out-of-bounds write bug impacting the V8 JavaScript an…THEHACKERNEWS.COM
14 MayCVE-2024-30010 Windows Hyper-V Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30011 Windows Hyper-V Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30017 Windows Hyper-V Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30018 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30019 DHCP Server Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30053 Azure Migrate Cross-Site Scripting VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30027 NTFS Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30028 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30030 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30038 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30041 Microsoft Bing Search Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30042 Microsoft Excel Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30046 Visual Studio Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30047 Dynamics 365 Customer Insights Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayCVE-2024-30048 Dynamics 365 Customer Insights Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 MayChromium: CVE-2024-4761 Out of bounds write in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information. Google is aware that an exploit for CVE-2024-4761 exists in…MSRC.MICROSOFT.COM
14 MayFBI warns Black Basta ransomware impacted over 500 organizations worldwideA ransomware-as-a-service operation known as Black Basta has grown to be one of the most prolific cybercrime threats over the past two years, managing to compromise over 500 organizations from around the world. Many of its victims have been healthcare providers and organizations …CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 42[−]
14 MayLeveraging AI & The Role Identity Plays - BSW #350AI is more than just a buzzword. Done right, AI can improve decision making and scale your identity security platform to manage every identity, human and machine, physical and digital. Learn about how Saviynt’s #1 Identity Security platform is leveraging a variety of AI capabilit…YOUTUBE.COM
14 MayLow-tech tactics still top the IT security risk chartLow-tech attack vectors are being adapted by cyber criminals to overcome security defenses because they can often evade detection until it’s too late. USB-based attacks, QR codes in phishing emails, and social engineering, improved with the help of generative AI, are examples of …CSOONLINE.COM
14 MayThe role of law enforcement in remediating ransomware attacksWhile 97% of organizations hit by ransomware report the attack, the level of involvement of law enforcement and/or official bodies varies considerably by country.SOPHOS.COM
14 MayGoogle Chrome emergency update fixes 6th zero-day exploited in 2024Google has released emergency security updates for the Chrome browser to address a high-severity zero-day vulnerability tagged as exploited in attacks. [...]BLEEPINGCOMPUTER.COM
14 MayApple iTunes for Windows Flaw Let Attackers Execute Malicious CodeiTunes has been found to have an arbitrary code execution vulnerability that might allow attackers to execute malicious code. To fix this vulnerability, Apple has issued a security advisory. It also stated that until an investigation is complete and updates or releases are ready,…GBHACKERS.COM
14 May3 recommendations for adopting generative AI for cyber defenseIn the past eighteen months, generative AI (gen AI) has gone from being the source of jaw-dropping demos to a top strategic priority in nearly every industry. A majority of CEOs report feeling under pressure to invest in gen AI. Product teams are now scrambling to build gen AI in…SECURITYINTELLIGENCE.COM
14 MayBlack Basta ransomware group’s techniques evolve, as FBI issues new warning in wake of hospital attackSecurity agencies in the United States have issued a new warning about the Black Basta ransomware group, in the wake of a high-profile attack against the healthcare giant Ascension. The cyber attack last week forced the Ascension computer systems offline, and caused some hospital…EXPONENTIAL-E.COM
14 MayCISA and Partners Release Guidance for Civil Society Organizations on Mitigating Cyber Threats with Limited ResourcesCISA, in partnership with the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI) and international partners, released Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society . The joint guidance provides civil society organization…CISA.GOV
14 MayOngoing Campaign Bombarded Enterprises with Spam Emails and Phone CallsCybersecurity researchers have uncovered an ongoing social engineering campaign that bombards enterprises with spam emails with the goal of obtaining initial access to their environments for follow-on exploitation. "The incident involves a threat actor overwhelming a us…THEHACKERNEWS.COM
14 MayMallox Ransomware Deployed via MS-SQL Honeypot AttackUpon analyzing Mallox samples, researchers identified two distinct affiliates using different approaches. One focused on exploiting vulnerable assets, while the other aimed at broader compromises of information systems on a larger scale.INFOSECURITY-MAGAZINE.COM
14 MayEquipped with AI tools, hackers make apps riskier than everAn application is more likely to be attacked over a four-week period in 2024 than it was a year back, and the odds are rising by the day, according to a Digital.ai report. Gathering data from its App Aware customers, a threat monitoring system used globally, the Digital.ai report…CSOONLINE.COM
14 MayNew threat trends emerge out of East AsiaSince June 2023, Microsoft has been tracking activity from multiple Chinese and North Korean nation-state groups . Our observations indicate that these threat actors are doubling down on familiar targets by using novel, more sophisticated influence techniques to achieve their goa…CSOONLINE.COM
14 MayVMware Patches Vulnerabilities Exploited at Pwn2Own 2024VMware has patched three vulnerabilities exploited earlier this year at the Pwn2Own hacking competition. The post VMware Patches Vulnerabilities Exploited at Pwn2Own 2024 appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisories on May 14, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-135-01 Rockwell Automation FactoryTalk Remote Access ICSA-24-135-02 SU…CISA.GOV
14 MayVMware fixes three zero-day bugs exploited at Pwn2Own 2024VMware fixed four security vulnerabilities in the Workstation and Fusion desktop hypervisors, including three zero-days exploited during the Pwn2Own Vancouver 2024 hacking contest. [...]BLEEPINGCOMPUTER.COM
14 MaySAP Patches Critical Vulnerabilities in CX Commerce, NetWeaverSAP has released 14 new and three updated security notes on its May 2024 Security Patch Day. The post SAP Patches Critical Vulnerabilities in CX Commerce, NetWeaver appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayApple fixes Safari WebKit zero-day flaw exploited at Pwn2OwnApple has released security updates to fix a zero-day vulnerability in the Safari web browser exploited during this year's Pwn2Own Vancouver hacking competition. [...]BLEEPINGCOMPUTER.COM
14 MayVMware Patches Severe Security Flaws in Workstation and Fusion ProductsMultiple security flaws have been disclosed in VMware Workstation and Fusion products that could be exploited by threat actors to access sensitive information, trigger a denial-of-service (DoS) condition, and execute code under certain circumstances. The four vulnerabil…THEHACKERNEWS.COM
14 MayApple Releases Security Updates for Multiple ProductsApple has released security updates to address vulnerabilities in Safari, iOS, iPadOS, macOS, watchOS, and tvOS. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.  Users and administrators are encouraged to review the fol…CISA.GOV
14 MayINC Ransomware Source Code Selling on Hacking Forums for $300,000The source code of the INC ransomware-as-a-service (RaaS) operation, which has targeted organizations like Xerox Business Solutions, Yamaha Motor Philippines, and Scotland's National Health Service (NHS), is being sold on hacking forums for $300,000.BLEEPINGCOMPUTER.COM
14 MayThe Enterprise Browser & AI in Securing Software and Supply Chains - Mike Fey, Josh Lemos - ASW #285How companies are benefiting from the enterprise browser. It's not just security when talking about the enterprise browser. It's the marriage between security AND productivity. In this interview, Mike will provide real live case studies on how different enterprises are benefittin…YOUTUBE.COM
14 MayInside the OWASP Top 10 for LLM Applications - Sandy Dunn - ASW #285Everyone is interested in generative AIs and LLMs, and everyone is looking for use cases and apps to apply them to. Just as the early days of the web inspired the original OWASP Top 10 over 20 years ago, the experimentation and adoption of LLMs has inspired a Top 10 list of their…YOUTUBE.COM
14 MayApple Backports Fix for Zero-Day Exploited in Attacks to Older iPhonesThe flaw is a memory corruption issue in Apple's RTKit real-time operating system that enables attackers with arbitrary kernel read and write capability to bypass kernel memory protections.BLEEPINGCOMPUTER.COM
14 May KEVMicrosoft May 2024 Patch Tuesday fixes 3 zero-days, 61 flawsToday is Microsoft's May 2024 Patch Tuesday, which includes security updates for 61 flaws and three actively exploited or publicly disclosed zero days. [...]BLEEPINGCOMPUTER.COM
14 MayAustralian federal budget outlines investment in cybersecurityThe Australian federal government has announced the 2024-2025 budget, which includes investments in safe data storage for the upcoming Census, improving the data capability and cyber security of regulators, among other investments as part of broader IT improvements. The Australia…CSOONLINE.COM
14 MayThreat intelligence to protect vulnerable communitiesKey members of civil society—including journalists, political activists and human rights advocates—have long been in the cyber crosshairs of well-resourced nation-state threat actors but have scarce resources to protect themselves from cyber threats. On May 14, 2024, …SECURITYINTELLIGENCE.COM
14 MayMicrosoft fixes Windows zero-day exploited in QakBot malware attacks​Microsoft has fixed a zero-day vulnerability exploited in attacks to deliver QakBot and other malware payloads on vulnerable Windows systems. [...]BLEEPINGCOMPUTER.COM
14 MayMicrosoft May 2024 Patch Tuesday, (Tue, May 14th)This month we got patches for 67 vulnerabilities. Of these, 1 are critical, and 1 is being exploited according to Microsoft. ISC.SANS.EDU
14 MayAttackers Leveraging XSS To Make Phishing Emails Increasingly EvasiveAttackers are exploiting Reflected Cross-Site Scripting (XSS) flaws to bypass security filters, according to a new report from Vipre. This technique allows attackers to send benign links in phishing emails that will redirect users to malicious sites.KNOWBE4.COM
14 MayNHS Digital Hints at Exploit Sightings of Arcserve UDP VulnerabilitiesThe UK's National Health Service (NHS) is warning of possible exploitation attempts targeting vulnerabilities in the Arcserve Unified Data Protection (UDP) software, which were disclosed in March and had PoC exploit code released shortly after.THEREGISTER.COM
14 MayMicrosoft Releases May 2024 Security UpdatesTitle: Microsoft Releases May 2024 Security Updates Content: Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.  Users and administra…CISA.GOV
14 May KEVMicrosoft Warns of Active Zero-Day Exploitation, Patches 60 Windows VulnerabilitiesPatch Tuesday: Microsoft documents 60 security flaws in multiple software products and flags an actively exploited Windows zero-day for urgent attention. The post Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayCritical Patches Issued for Microsoft Products, May 14, 2024Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
14 MayPatch Tuesday, May 2024 EditionMicrosoft today released updates to fix more than 60 security holes in Windows computers and supported software, including two "zero-day" vulnerabilities in Windows that are already being exploited in active attacks. There are also important security patches available for macOS a…KREBSONSECURITY.COM
14 May KEVMicrosoft Patches Zero-Day Exploited by QakBotKaspersky Says It Spotted QakBot Operators Exploiting the Flaw in April Microsoft issued a patch Tuesday for a Windows zero-day vulnerability that security researchers say operators of the QakBot botnet and other hackers actively exploited. The elevation of privilege vulnerabilit…DATABREACHTODAY.CO.UK
14 MayPoC exploit released for RCE zero-day in D-Link EXO AX4800 routersThe D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port. [...]BLEEPINGCOMPUTER.COM
14 May KEVRSA (“RSAI”) Conference 2024 Powered by AI with AI on Top — AI Edition (Hey AI, Is This Enough AI?)RSA (“RSAI”) Conference 2024 Powered by AI with AI on Top — AI Edition (Hey AI, Is This Enough AI?) Where do we have “41,000 attendees, 650 speakers, 600 exhibitors and 400 members of the media” who all care about cyber security? Ha, an easy question : RSA Conference 2024, of cou…MEDIUM.COM
📋 SECURITY BULLETINS 2[−]
14 MayMicrosoft fixes Windows Server bug causing crashes, NTLM auth failuresMicrosoft has fixed a known issue causing NTLM authentication failures and domain controller reboots after installing last month's Windows Server security updates. [...]BLEEPINGCOMPUTER.COM
14 MayMicrosoft fixes VPN failures caused by April Windows updatesToday, ​Microsoft fixed a known issue breaking VPN connections across client and server platforms after installing the April 2024 Windows security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 18[−]
14 MaySophos Incident Response achieves NCSC Certified Incident Response (CIR) Level 2 statusI am delighted to announce that the Sophos Incident Response service has been awarded U.K.’s National Cyber Security Centre (NCSC) Cyber Incident Response (CIR) Level 2 status by CREST. This assurance confirms that amid the sophisticated cybersecurity threat landscape, Sophos has…SOPHOS.COM
14 MayRed Teaming: The Key Ingredient for Responsible AIRed teaming involves employing ethical hackers to rigorously test AI systems for security and safety issues. It is crucial for developing responsible AI that balances innovation and compliance with ethical standards and regulatory requirements.HELPNETSECURITY.COM
14 MayWhy Tokens are Like Gold for Opportunistic Threat ActorsTokens are valuable assets for threat actors, as they can be easily obtained through various attack methods and provide unauthorized access to corporate systems without requiring multi-factor authentication.DARKREADING.COM
14 MayCyber Insurers Pledge to Help Reduce Ransom PaymentsThe UK's NCSC and major insurance associations have partnered to help reduce the profitability of ransomware attacks by providing better support and guidance to victims, encouraging resilience, and promoting alternatives to paying ransoms.BANKINFOSECURITY.COM
🔥 INCIDENT REPORTING 23[−]
14 MayIn The Shadow Of Venus: Trinity Ransomware's Covert TiesResearchers at Cyble discovered a new ransomware variant called Trinity that employs a double extortion technique and shares similarities with the Venus ransomware, suggesting a potential link or common actor behind these two variants.CYBLE.COM
14 MayHackers Abuse GoTo Meeting Tool to Deploy Remcos RATIn a sophisticated cyberattack campaign, hackers are using the online meeting platform GoToMeeting to distribute a Remote Access Trojan known as Remcos. This alarming development underscores cybercriminals’ evolving tactics of leveraging trusted software to breach security …GBHACKERS.COM
14 MayZscaler Confirms Only Isolated Test Server Was HackedZscaler has completed its investigation into the recent hacking claims and found that only an isolated test environment was compromised. The post Zscaler Confirms Only Isolated Test Server Was Hacked appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayThreat Actor Selling INC Ransomware Code for $300,000A notorious threat actor has decided to sell the INC Ransomware code for an unbelievable $300,000. As a result of this change, the number of cyber threats has significantly increased, putting many more businesses at risk of damaging hacks. A recent tweet from threatMon shared tha…GBHACKERS.COM
14 MayHackers Abuse DNS Tunneling For Covert Communication & Firewall BypassAs a sneaky scheme, hackers use DNS tunneling to bypass traditional security measures. By wrapping malicious data inside DNS queries and responses, they can smuggle out sensitive information or talk to command and control servers without getting caught. DNS tunneling provides an …GBHACKERS.COM
14 MayZscaler Concludes Investigation: Only Test Servers CompromisedIn a recent development, Zscaler Inc., a prominent cybersecurity firm, has concluded its investigation into a potential data breach initially reported last week. The company confirmed that the breach was confined to an isolated test environment on a single server containing no cu…GBHACKERS.COM
14 MayResearchers Identify New Campaigns from Scattered SpiderThe Scattered Spider, a group of hackers, has been actively attacking the finance and insurance industries worldwide, using tactics like domain impersonation, SIM swapping, and partnering with the BlackCat ransomware group to breach high-value firms.CYBERRESILIENCE.COM
14 MayNew Botnet Sending Millions of Weaponized Emails with LockBit Black RansomwareThe New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) has detected a formidable new cyber threat. Dubbed LockBit Black, this ransomware campaign is leveraging a botnet to distribute millions of weaponized emails, posing a significant risk to individuals and …GBHACKERS.COM
14 MayStudent, Personnel Information Stolen in City of Helsinki CyberattackThe City of Helsinki says usernames, email addresses, and personal information was stolen in a recent cyberattack. The post Student, Personnel Information Stolen in City of Helsinki Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayCyber Insurers Pledge to Help Reduce Ransom PaymentsFirms Back New Guidance for Victims From UK's National Cyber Security Centre A coalition of cyber insurance associations has pledged to back fresh government cybersecurity guidance designed to help victims avoid ever paying a ransom, as part of an ongoing push to reduce ransomwar…DATABREACHTODAY.CO.UK
14 MayDell API abused to steal 49 million customer records in data breach | Cybersafe News Dell API abused to steal 49 million customer records in data breachsubmitted by Lanky_Pomegranate530 to cybersecurity 2 points | 0 comments https://cybersafe.news/dell-api-abused-to-steal-49-million-customer-records-in-data-breach/CYBERSAFE.NEWS
14 MayNew Research: Number of Successful Ransomware Attacks Rise 29% in a Just One YearNew analysis of Q1’s ransomware attacks uncovers a single group responsible for the majority and discusses what makes them so successful.KNOWBE4.COM
14 MayMillions of Messages Distribute LockBit Black RansomwareThe attack chain required user interaction to execute the malicious email attachment, which then initiated a network callout to the Phorpiex botnet infrastructure to download and detonate the LockBit Black ransomware.PROOFPOINT.COM
14 MayEbury botnet malware infected 400,000 Linux servers since 2009A malware botnet known as 'Ebury' has infected almost 400,000 Linux servers since 2009, with roughly 100,000 still compromised as of late 2023. [...]BLEEPINGCOMPUTER.COM
14 MayThreat actor scraped Dell support tickets, including customer phone numbersThe person who claimed to have stolen the physical addresses of 49 million Dell customers appears to have taken more data from a different Dell portal, TechCrunch has learned. The newly compromised data includes names, phone numbers and email addresses of Dell customers. This per…TECHCRUNCH.COM
14 MayDefending against popular cyberattack techniques in 2024Overview of the most common ATT&CK techniques in real-world incidents and tips for defending against them in 2024.KASPERSKY.COM
14 May“Unknown” Initial Attack Vectors Continue to Grow and Plague Ransomware AttacksTrend analysis of ransomware attacks in the first quarter of this year reveals a continual increase in the number of "unknown" initial attack vectors, and I think I might understand why.KNOWBE4.COM
14 MaySinging River Health System: Data of 895,000 stolen in ransomware attackThe Singing River Health System is warning that it is now estimating that 895,204 people are impacted by a ransomware attack it suffered in August 2023. [...]BLEEPINGCOMPUTER.COM
14 MayImpact of Ascension's Cyberattack IT Outage Varies by RegionIn Some Regions, ER Patients Still Diverted, Pharmacies Can't Fill Prescriptions U.S. hospital chain Ascension is making progress recovering from last week's ransomware attack, but it will take time to restore all its affected IT services, including electronic health records and …DATABREACHTODAY.CO.UK
14 MayEbury is alive but unseen: 400k Linux servers compromised for cryptocurrency theft and financial gainOne of the most advanced server-side malware campaigns is still growing, with hundreds of thousands of compromised servers, and it has diversified to include credit card and cryptocurrency theftWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 22[−]
14 MayMITRE Releases EMB3D Cybersecurity Threat Model for Embedded DevicesIn collaboration with Red Balloon Security, Narf Industries, and Niyo Little Thunder Pearson (ONEGas, Inc.), MITER has unveiled EMB3D, a comprehensive threat model designed to address the growing cybersecurity risks faced by embedded devices in critical infrastructure sectors. Em…GBHACKERS.COM
14 MayISC Stormcast For Tuesday, May 14th, 2024 https://isc.sans.edu/podcastdetail/8980, (Tue, May 14th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
14 MayGPT-4o Released: Faster Model Available for Free to All UsersOpenAI, the top lab for researching artificial intelligence, just released GPT-4o, its newest advance in AI technology. In the field of generative AI, this newest and most advanced model is a big step forward because it can work with voice, vision, and text for real-time interact…GBHACKERS.COM
14 MayAI’s Rapid Growth Puts Pressure on CISOs to Adapt to New Security RisksThe increased use of AI further complicates CISO role as industries begin to realize the full potential of GenAI and its impact on cybersecurity, according to a report by Trellix.HELPNETSECURITY.COM
14 MayFCC Reveals Royal Tiger, its First Tagged Robocall Threat ActorThe FCC's new robocall bad actor classification system, called Consumer Communications Information Services Threat (C-CIST), aims to help authorities identify and track threat actors abusing telecommunications infrastructure.BLEEPINGCOMPUTER.COM
14 MayMITRE EMB3D Threat Model Officially ReleasedMITRE announced the public availability of the EMB3D threat model for embedded devices used in critical infrastructure. The post MITRE EMB3D Threat Model Officially Released appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayFCC Warns of ‘Royal Tiger’ Robocall ScammersThe FCC has issued a public notice on robocall scammer group ‘Royal Tiger’, the first designated threat actor. The post FCC Warns of ‘Royal Tiger’ Robocall Scammers appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayMalicious Go Binary Delivered via Steganography in PyPIsubmitted by kid to cybersecurity 2 points | 0 comments https://blog.phylum.io/malicious-go-binary-delivered-via-steganography-in-pypi/PHYLUM.IO
14 MayCyberthreat landscape permanently altered by Chinese operations, US officials saysubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/cyberthreat-landscape-altered-chinese-operationsTHERECORD.MEDIA
14 MayAttackers Use DNS Tunneling to Track Victim Activity, Scan NetworksThreat actors are using DNS tunneling to track victims’ interaction with spam and to scan network infrastructures. The post Attackers Use DNS Tunneling to Track Victim Activity, Scan Networks appeared first on SecurityWeek .SECURITYWEEK.COM
14 MayAlert: Nova Scotians Hit by Surge of Sophisticated Spear Phishing ScamsThe Royal Canadian Mounted Police (RCMP) in Nova Scotia is warning of spear phishing attacks that impersonate company managers. The scammers text company employees requesting a payment to cover an urgent business need.KNOWBE4.COM
14 MayOverheard at RSA Conference 2024: Top trends cybersecurity experts are talking aboutAt a brunch roundtable, one of the many informal events held during the RSA Conference 2024 (RSAC), the conversation turned to the most popular trends and themes at this year’s events. There was no disagreement in what people presenting sessions or companies on the Expo sho…SECURITYINTELLIGENCE.COM
14 MayHacker Conversations: Ron Reiter, and the Making of a Professional HackerRon Reiter was a childhood hacker in Israel. He was recruited into the IDF’s elite Unit 8200 for his military service. Now he is CTO and co-founder of cybersecurity firm Sentra. The post Hacker Conversations: Ron Reiter, and the Making of a Professional Hacker appeared first on S…SECURITYWEEK.COM
14 MayThat Data Sprawl is Here! What Should We Do About it? - Nick Ritter - CSP #174As technology has enabled high speed access and massive amounts of inexpensive storage, data is being created at a logarithmic hockey-stick pace. Not all this data is important for the organization, however the organization must understand what data is important to run the busine…YOUTUBE.COM
14 MayUpcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak: I’m giving a webinar via Zoom on Wednesday, May 22, at 11:00 AM ET. The topic is “ Should the USG Establish a Publicly Funded AI Option? “ The list is maintained on this page .SCHNEIER.COM
14 MayAI Is An Expert LiarAI Systems Lied to Win Games, Trick Humans into Solving Captcha Artificial intelligence lies like humans lie - without compunction and with premeditation. That's bad news for the people who want to rely on it, warn researchers who spotted patterns of deception in AI models traine…DATABREACHTODAY.CO.UK
14 MayLeveraging DNS Tunneling for Tracking and ScanningThreat actors are using DNS tunneling as a means to scan for network vulnerabilities and check the success of phishing campaigns, according to new research from Palo Alto Networks.UNIT42.PALOALTONETWORKS.COM
14 MayTornado Cash Developer Sentenced to 5 Years in PrisonPertsev Turned A Blind Eye to Illicit Activity on the Mixer, Dutch Court Says A Dutch court Tuesday handed Tornado Cash developer Alexey Pertsev a sentence of five years and four months for money laundering. The 31-year-old Russian national developed and maintained cryptocurrency…DATABREACHTODAY.CO.UK
14 MayAdobe Patches Critical Flaws in Reader, AcrobatAdobe documents multiple code execution flaws in a wide range of products, including the widely deployed Adobe Acrobat and Reader software. The post Adobe Patches Critical Flaws in Reader, Acrobat appeared first on SecurityWeek .SECURITYWEEK.COM
14 May3000 Years Ago, Dell, Robocalls, PyPI, Cinterion, Cacti, Chat-GPT, Josh Marpet... - SWN #3863000 Years Ago, Dell, Robocalls, PyPI, Cinterion, Cacti, Chat-GPT, Windows, Josh Marpet, and more, on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-386YOUTUBE.COM
14 MayUK, US Officials Warn About Chinese CyberthreatUK GCHQ Director Calls Chinese Hacking a 'Top Priority' Chinese-backed espionage and cyber disruption pose a major threat to global critical infrastructure as Beijing races for global edge, British and U.S. cyber officials warned Tuesday. Responding to the scale and complexity of…DATABREACHTODAY.CO.UK
14 MayESET APT Activity Report Q4 2023–Q1 2024An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2023 and Q1 2024WELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
14 MayInsider Threats Maintain a Rising TrendInsider threats, including dishonest actions to obtain benefits through theft or deception, have seen a significant rise in the past year, driven by factors like rising cost of living, remote work, and the increasing sophistication of fraud tactics.TRIPWIRE.COM
📡 INFOSEC NEWS 15[−]
14 MayApple and Google Launch Cross-Platform Feature to Detect Unwanted Bluetooth Tracking DevicesApple and Google on Monday officially announced the rollout of a new feature that notifies users across both iOS and Android if a Bluetooth tracking device is being used to stealthily keep tabs on them without their knowledge or consent. "This will help mitigate the misuse of dev…THEHACKERNEWS.COM
14 MayCybercriminals Steal One-Time Passcodes for SIM Swap Attacks and Raiding Bank AccountsCybercriminals are using an automated service called "Estate" to steal one-time passcodes and hijack user accounts, including bank accounts, crypto wallets, and other sensitive services, by tricking them into revealing the codes over the phone.TECHCRUNCH.COM
14 May6 Mistakes Organizations Make When Deploying Advanced AuthenticationDeploying advanced authentication measures is key to helping organizations address their weakest cybersecurity link: their human users. Having some form of 2-factor authentication in place is a great start, but many organizations may not yet be in that spot or have…THEHACKERNEWS.COM
14 MaySoutheast Asian Scam Syndicates Stealing $64 Billion Annually, Researchers FindResearchers have found that Southeast Asian scam syndicates are stealing an estimated $64 billion annually through various online fraud operations, with the majority of the losses occurring in Cambodia, Laos, and Myanmar.THERECORD.MEDIA
14 MayApple and Google add alerts for unknown Bluetooth trackers to iOS, AndroidOn Monday, Apple and Google jointly announced a new privacy feature that warns Android and iOS users when an unknown Bluetooth tracking device travels with them. [...]BLEEPINGCOMPUTER.COM
14 MayApple touts stopping $1.8BN in App Store fraud last year in latest pitch to developersApple released new data about anti-fraud measures related to its operation of the iOS App Store on Tuesday morning, trumpeting a claim that it stopped over $7 billion in “potentially fraudulent transactions” across the four years between 2020 and 2023. More than $1.8 …TECHCRUNCH.COM
14 MayWindows 11 KB5037771 update released with 30 fixes, changesMicrosoft is rolling out the KB5037771 cumulative update for Windows 11 23H3 with thirty bug fixes and changes, including a fix for a bug breaking VPN connections. [...]BLEEPINGCOMPUTER.COM
14 MayVermont Passes Data Privacy Law Allowing Consumers to Sue CompaniesVermont has passed one of the strongest comprehensive data privacy laws in the country, which includes a provision allowing individuals to sue companies for violating their privacy rights.THERECORD.MEDIA
14 MayWindows 10 KB5037768 update released with new features and 20 fixesMicrosoft has released the KB5037768 cumulative update for Windows 10 21H2 and Windows 10 22H2 with twenty changes, including account notifications in the Start Menu and Widgets on the lock screen. [...]BLEEPINGCOMPUTER.COM
14 MayVMware makes Workstation Pro and Fusion Pro free for personal useVMWare has made Workstation Pro and Fusion Pro free for personal use, allowing home users and students to set up their own virtualized test labs and play with another operating system at little to no cost. [...]BLEEPINGCOMPUTER.COM